Connectivity Requirements
Overview
Full details of all required network/firewall rules for AppsAnywhere are detailed below.
Further information is available on AppsAnywhere Firewall Rules.xlsx and by request to AppsAnywhere Support or as part of an AppsAnywhere Implementation.
For Parallels RAS, please refer to Parallels RAS 19 Administrator's Guide - Port reference.
Firewall Rules
The following tables detail the connectivity required, grouped according to the origin of the network traffic.
All traffic is bi-directional
Internal Destinations should be amended to match internal servers and services.
There is no requirement to configure firewall rules on AppsAnywhere servers.
AppsAnywhere
Inbound Traffic (Internal and External)
Sources | Internal Destination | Port | Usage |
|---|---|---|---|
Client Devices | appsanywhere01.uni.edu | 443 TCP | User access to AppsAnywhere via a load balancer |
Client Devices | paging01.uni.edu | 80 TCP | User access to the Paging Service |
Jump Host | appsanywhere01.uni.edu | 22 TCP | SSH access for administration (usually via a Windows jump host) |
Jump Host | analytics.uni.edu | 22 TCP | AppsAnywhere remote support for installation, configuration and upgrades |
AppsAnywhere | appsanywhere01.uni.edu | 80 TCP | Transfer of AppsAnywhere Client installers from other internal AppsAnywhere servers |
AppsAnywhere | analytics.uni.edu | 19999 TCP | Authorizing sessions for AppsAnywhere Analytics and pulling data on behalf of AppsAnywhere Analytics UI and is only required from the AppsAnywhere Servers |
Inbound Traffic (Internal)
Sources | Internal Destination | Port | Usage |
|---|---|---|---|
Client Devices | analytics.uni.edu | 9999 TCP | User access to Analytics A direct connection to the server DNS is recommended |
Outbound Traffic (Internal)
Sources | Internal Destination | Port | Usage |
|---|---|---|---|
AppsAnywhere | MSSQL.uni.edu | 1433 TCP | Connection to your SQL database |
AppsAnywhere | MSSQL.uni.edu | 1434 UDP | Connection to your SQL database, if using dynamic ports |
Analytics | MSSQL.uni.edu | 1433 TCP | Connection to your SQL database |
Analytics | MSSQL.uni.edu | 1434 UDP | Connection to your SQL database, if using dynamic ports |
AppsAnywhere | AD.uni.edu | 636 TCP | Connection via LDAPS to Active Directory |
AppsAnywhere | AD.uni.edu | 88 UDP | Connection via Kerberos to Active Directory |
AppsAnywhere | appsanywhere02.uni.edu | 80 TCP | Transfer of AppsAnywhere Client installers to other internal AppsAnywhere servers |
AppsAnywhere | cloudpaging.uni.edu | 443 TCP | Connection to your Cloudpaging service (if applicable) |
AppsAnywhere | parallels.uni.edu | 443 TCP | Connection to the Parallels RAS service (if applicable) |
AppsAnywhere | analytics.uni.edu | 19999 TCP | Connection to the Analytics Appliance |
AppsAnywhere | myfileshare.uni.edu | 445 TCP | AppsAnywhere Service access to the Secure Download UNC path |
Outbound Traffic (External)
Source | Port | Usage |
|---|---|---|
AppsAnywhere | 123 UDP | CentOS (Chrony) Time Service |
AppsAnywhere | 80 TCP | Icon Library and CentOS updates |
AppsAnywhere | 443 TCP | APIs, libraries and CentOS updates |
AppsAnywhere | 587 TCP | Email alerts via SMTP |
Analytics | 123 UDP | CentOS (Chrony) Time Service |
Analytics | 443 TCP | Appliance ACC, Daily License Check and CentOS updates |
Analytics | 80 TCP | CentOS updates |
Analytics | 587 TCP | Email alerts via SMTP |
External Destinations
The following table provides detailed information for all the outbound destinations that AppsAnywhere requires access to during normal operation.
Source | External Destination | Port | Usage |
|---|---|---|---|
AppsAnywhere | 0.centos.pool.ntp.org | 123 UDP | CentOS Time Service |
AppsAnywhere | 1.centos.pool.ntp.org | 123 UDP | CentOS Time Service |
AppsAnywhere | 2.centos.pool.ntp.org | 123 UDP | CentOS Time Service |
AppsAnywhere | 3.centos.pool.ntp.org | 123 UDP | CentOS Time Service |
AppsAnywhere | api.appsanywhere.com | 80 TCP | Icon Library |
AppsAnywhere | api.software2.com | 443 TCP | AppsAnywhere Server Registration |
AppsAnywhere | b12228822d08f4925072-e23aef5ecad0f6168507017a4f5869f1.ssl.cf3.rackcdn.com | 443 TCP | AppsAnywhere Icon Library |
AppsAnywhere | mirrorlist.centos.org | 80 TCP | CentOS Update Repository |
AppsAnywhere | cdn.remirepo.net | 80 TCP | CentOS Update Repository |
AppsAnywhere | mirrors.fedoraproject.org | 443 TCP | CentOS Update Repository |
AppsAnywhere | rpms.remirepo.net | 443 TCP | CentOS Update Repository |
AppsAnywhere | packages.microsoft.com | 443 TCP | CentOS Update Repository |
AppsAnywhere | rpm.nodesource.com ADDED 2.11 | 443 TCP | Node.js Update Repository |
AppsAnywhere | appsanywhereresources.blob.core.windows.net | 443 TCP | Appliance Configuration Console |
AppsAnywhere | 1bdb4cc9b0722bc205a377fabbc4511a62a47f7610ad5c7c4e62.ssl.cf3.rackcdn.com | 443 TCP | Client Management |
AppsAnywhere | *.s2public.blob.core.windows.net | 443 TCP | Client Management |
AppsAnywhere | software2-public.azureedge.net | 443 TCP | Patch Management |
AppsAnywhere | ajax.googleapis.com | 443 TCP | jQuery & Google Fonts |
AppsAnywhere | github.com | 443 TCP | Other AppsAnywhere libraries |
AppsAnywhere | smtp.sendgrid.net | 587 TCP | Email alerts via SMTP |
Analytics Server | 0.centos.pool.ntp.org | 123 UDP | CentOS Time Service |
Analytics Server | 1.centos.pool.ntp.org | 123 UDP | CentOS Time Service |
Analytics Server | 2.centos.pool.ntp.org | 123 UDP | CentOS Time Service |
Analytics Server | 3.centos.pool.ntp.org | 123 UDP | CentOS Time Service |
Analytics Server | mirrorlist.centos.org | 80 TCP | CentOS Update Repository |
Analytics Server | cdn.remirepo.net | 80 TCP | CentOS Update Repository |
Analytics Server | rpms.remirepo.net | 443 TCP | CentOS Update Repository |
AppsAnywhere | mirrors.fedoraproject.org | 443 TCP | CentOS Update Repository |
Analytics Server | s2public.blob.core.windows.net | 443 TCP | ACC Updates |
Analytics Server | software2-public.azureedge.net | 443 TCP | ACC Updates |
Analytics Server | bitbucket.org | 443 TCP | Analytics model and ML updates used by reports and the reporting schema |
Analytics Server | license.looker.com | 443 TCP | Daily heartbeat to licensing server |
Analytics Server | smtp.sendgrid.net | 587 TCP | Email alerts via SMTP |
Cloudpaging
Inbound Traffic (Internal and External)
Sources | Internal Destination | Port | Usage |
|---|---|---|---|
Client Devices | paging01.uni.edu | 80 TCP | User access to the Paging Service |
Inbound Traffic (Internal)
Sources | Internal Destination | Port | Usage |
|---|---|---|---|
AppsAnywhere | cloudpaging01.uni.edu | 443 TCP | AppsAnywhere access to the Cloudpaging Admin Service via a load balancer |
Parallels RAS
For Parallels RAS, please refer to Parallels RAS 19 Administrator's Guide - Port reference.